I’ve been pretty happy with my freedombox. I’ve recently moved into a new home, and have a new ISP and IP address. How do I get my freedombox set back up with the new ISP? Is there a series of steps I need to take with the domain name and other services? What about the certificates?
Steps to Reproduce
Have a working freedombox
build a huge freaking awesome log home from trees you cut down and peeled and then stacked with block and tackle.
obtain fiber internet from the local podunk ISP
unplug freedombox and move it to the aforementioned log home and plug into new router.
get a message on the internet that says it’s broken
I actually had no expected results. I knew it probably wouldn’t work “out of the box”.
I get an error with the following message:
" Your connection is not private
Attackers might be trying to steal your information from mudbox.freedombox.rocks (for example, passwords, messages, or credit cards). Learn more
I guess you need to have your web browser let you access the page (by accepting to go there or using plain http) and go to system->let’s encrypt and click on the button to obtain a new certificate.
I ran the “diagnostic test” provided by freedombox - it says port 80 is open - so then I connected my laptop to my cell as a hotspot (to avoid hairpinning my connection), and I cannot reach my freedombox publicly. so then I tried pinging the ip address of my freedombox, and I can do that successfully.
So how do I verify port 80 is really open? call my ISP ?
Did you redirect ports 80 and 443 from your router to your freedombox?
The situation might also be that you don’t even have a public IPv4 address allocated to you, i.e. that they use CGNAT, in which case you can’t do that. How do you connect to your ISP? Is the modem/router your own or the ISP provides them?
Leave the first 3 as they are, in “Destination Device”, see if you can find something that identifies your freedombox and in “Destination IP” set it s local IP.
For the other ones, what are the choices? There should be the option to select a port or a port range, and TCP and/or UDP. What is needed is TCP for ports 80 and 443. I would select enable Hairpin maybe, not sure.
Maybe you just need to update the settings with your ddns-service.
Mine is https://ddns.freedombox.org/
Had the same shit recently, and didn’t find the mistake for weeks. When I found out, I could connect via IP, it seemed to be reasonable, to check the dns-resolver. Thad did the trick for me. Seems you haven’t tried this so far. Congrats to the Loghouse!
If you have the router setup with DMZ set to the local address of your freedombox and that address does not change, there should be no need to do anything more.
That said, this DMZ concept depends on routers, it may be only for IPv4, and ISPs may configure filters/exceptions on their routers without saying. I tried using IPv6 but I did not manage to configure things properly so for the time being, I have deactivated IPv6.